From: W.C.A. Wijngaards <wouter@nlnetlabs.nl>
Date: Wed, 20 May 2026 08:22:10 +0000 (+0200)
Subject: Changelog entry.
X-Git-Tag: release-1.25.1~1
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=138fb48eac364f1567b5ad8a0a038eab6312a8be;p=thirdparty%2Funbound.git

Changelog entry.
- Fix CVE-2026-44390, Unbounded name compression in certain cases
  causes degradation of service. Thanks to Qifan Zhang, Palo Alto
  Networks, for the report.
---

diff --git a/doc/Changelog b/doc/Changelog
index eb59a1a73..a9fd4dc95 100644
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -22,6 +22,9 @@
 	- Fix CVE-2026-42960, Possible cache poisoning attack while following
 	  delegation. Thanks to TaoFei Guo from Peking University, Yang Luo
 	  and JianJun Chen, Tsinghua University, for the report.
+	- Fix CVE-2026-44390, Unbounded name compression in certain cases
+	  causes degradation of service. Thanks to Qifan Zhang, Palo Alto
+	  Networks, for the report.
 
 23 April 2026: Wouter
 	- Merge #1441: Fix buffer overrun in